Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/77qULHE1vYijQtjZNQDqAYLCx84.roa
File: 77qULHE1vYijQtjZNQDqAYLCx84.roa (raw, json)
Hash identifier: kzEfeaYYo9bqlipQJHMYTPQXG2u/aTlT3ZmQ3aWEQJc=
Subject key identifier: EF:BA:94:2C:71:35:BD:88:A3:42:D8:D9:35:00:EA:01:82:C2:C7:CE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E6A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/77qULHE1vYijQtjZNQDqAYLCx84.roa
Signing time: Wed 29 Sep 2021 02:43:33 +0000
ROA not before: Wed 29 Sep 2021 02:43:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 106.105.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3690 (0xe6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EFBA942C7135BD88A342D8D93500EA0182C2C7CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:78:b2:a7:13:80:db:30:5f:79:5d:bc:c3:20:
fa:df:d7:5b:e2:27:92:fe:51:07:b0:16:af:08:b4:
22:e9:b5:2b:ec:7e:2b:a1:e3:f7:21:7e:40:87:20:
a4:4e:d8:71:0d:c9:1b:55:40:51:f5:de:ab:a1:fc:
d7:88:5e:8e:5a:7a:c3:f0:c2:02:78:36:ef:7b:fe:
12:19:51:03:14:59:e1:be:17:5b:52:6f:66:39:5c:
be:ea:8c:58:8e:bc:dd:ab:ed:bd:f9:53:be:07:f1:
a1:da:f3:fc:bf:3c:5f:e8:0c:1e:ce:36:da:cf:96:
c7:d8:f4:a1:ed:cc:72:16:57:d8:38:c7:2d:b0:2b:
cf:1e:f4:5d:ec:90:c2:b4:66:ce:56:25:33:77:a1:
85:d8:46:c5:0e:ee:1a:c8:ae:f5:af:45:6d:82:38:
44:ad:0f:f3:78:2a:d4:e4:6d:5d:ca:08:64:67:79:
db:e8:be:4a:d9:40:ba:5c:9d:5f:9d:94:2a:83:ea:
d4:e0:d3:4c:62:34:09:14:7d:57:f9:9c:b2:f6:3e:
19:79:e7:83:92:94:a3:7d:08:92:7f:6e:48:b1:f6:
50:d1:ba:48:d2:8a:cf:c1:57:e5:90:8a:4b:d5:16:
20:31:ac:9f:c8:95:d3:ad:44:9a:a2:2b:ac:e1:59:
ca:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BA:94:2C:71:35:BD:88:A3:42:D8:D9:35:00:EA:01:82:C2:C7:CE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/77qULHE1vYijQtjZNQDqAYLCx84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.179.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d9:75:0a:2d:04:dd:18:52:ff:dc:79:4c:7b:3a:b7:e2:9b:
2d:0c:4d:ab:77:66:e1:ef:81:42:0d:35:aa:a3:b9:32:ad:c3:
23:a5:d7:c4:2d:1b:d0:13:62:94:ad:07:6f:b2:76:50:f4:c4:
dd:15:ae:40:c5:2b:68:75:e0:58:6e:9c:47:c1:b5:ab:71:99:
31:be:80:51:81:a8:4d:c3:dc:1a:27:7a:bb:60:4c:e0:9d:24:
c6:54:e2:77:04:6d:6a:a3:85:94:ad:31:cf:50:70:c9:f9:31:
f4:d2:e9:33:5d:44:24:2d:80:78:2c:2b:b3:f6:64:2f:ce:7b:
f8:83:ba:e8:42:2b:27:9d:7f:5f:9e:04:75:a3:d3:1e:31:a5:
b0:30:f8:1e:99:b9:21:11:dc:60:b5:7e:87:a6:20:72:0f:3e:
0d:52:d3:13:87:36:df:db:9d:d6:68:d4:26:2b:9a:74:ec:80:
d0:a8:7a:4e:0c:2d:51:8b:6e:c9:44:ff:b4:71:9b:df:03:ea:
ce:bb:15:44:8e:0c:36:43:dc:a7:8b:34:7c:f5:c6:06:55:49:
30:d0:52:a9:b7:69:f7:91:4e:78:e0:70:70:92:8d:63:cd:b1:
06:85:0d:30:17:5e:44:51:26:53:ef:8e:d6:83:d4:8c:50:95:
bd:97:8e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org